Page 2 of 2 FirstFirst 12
Results 11 to 14 of 14

Thread: ** HEAD'S UP ** FireFox Java Vulnerability

  1. April 5th, 2005, 03:30 PM #11
    ByTeWrangler
    ByTeWrangler is offline
    StOrM™
    Join Date
    Aug 2004
    Posts
    1,003
    Greeting's

    This vulnerabality also affects **Netscape** more can be found here :

    http://secunia.com/advisories/14804/

    I would also like to thank SirDice for correcting my post.
    Parth Maniar,
    CISSP, CISM, CISA, SSCP

    *Thank you GOD*

    Greater the Difficulty, SWEETER the Victory.

    Believe in yourself.
    Reply With Quote Reply With Quote
  2. April 5th, 2005, 04:34 PM #12
    ric-o
    ric-o is offline
    oldie ric-o's Avatar
    Join Date
    Nov 2002
    Posts
    486
    Mozilla v1.7.3 with JavaScript turned ON runs POC...with it OFF it doesn't.

    Successful exploitation may disclose sensitive information in memory.
    Like maybe...say....passwords?! eek
    Reply With Quote Reply With Quote
  3. April 5th, 2005, 05:18 PM #13
    scratchONtheBOX
    scratchONtheBOX is offline
    Senior Member
    Join Date
    Jan 2005
    Posts
    217

    Exclamation Just in time: SELF-TESTING

    SELF-TESTING

    Like maybe...say....passwords?! eek
    Just about time to post this, ric-o.

    For you guys who want to test the script! (Take extreme precautions!).

    I am curious for the source of the testing page facilitated for this vulnerability. I checked it (not being scriptkiddie or something), just plain curiousity, I extracted the most important part of the script just to find out what is really happening.

    First, try the attached html (crash_JS_FF.html in zip file [crash_JS_FF.zip] --extract it first) and try it on a testing BoX (remember, testing BoX).

    Here are the observations:

    - Using Firefox, I run the HTML.
    - Clicking the “Test Now - Left Click On This Link” each time reveals somewhat random data extracted from the memory. This is exciting to explore. I’ve come across this “LOAD_DOCUMENT_URI LOAD_RETARGETED_DOCUMENT_URI LOAD_REPLACE LOAD_INITIAL_DOCUMENT_URI LOAD_TARGETED - - userPass username password hostPort asciiSpec asciiHost”. Not yet scary huh!

    Note that it crashes on my TEST BOX after clicking 3 times or more (never crashed lower than 3 clicks)… Randomly observe how many clicks you can possibly do before it crashes. I am still observing when would sensitive info like user and password could show up. Still not came across that severity. But one thing for sure, with the random exposure of memory content, too many sensitive information about your BoX and activities could be revealed. Whew. For those who want to try this (in a TEST BoX), please have your feedback on it. And just an added observation, check the task manager how it reacts every time you click. The Memory usage for some program changes in my BoX. *(XP Pro) ?

    *
    Need to add that in IE (latest), nothing happens except for showing the XXXXXXXXXXX... Not crashing. LoLz
    *

    Just to share some curiosity and observation. Remember, TAKE NECESSARY PRECAUTIONS BEFORE DOING THIS, BE SURE YOU KNOW WHAT TO DO!

    Cheers!

    Yo!
    \"Life without FREEDOM is no life at all\". - William Wallace
    MyhomE MyboX StealtH (loop n. see loop.)
    http://www.geocities.com/sebeneleben/SOTBMulti.gif
    Reply With Quote Reply With Quote
  4. April 5th, 2005, 05:48 PM #14
    dodd3256
    dodd3256 is offline
    Junior Member
    Join Date
    Aug 2004
    Posts
    18
    Has been fixed in the next release. You can get nightly builds from here:

    http://weblogs.mozillazine.org/asa/
    Reply With Quote Reply With Quote
« Previous Thread | Next Thread »

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

Forum Rules